first commit

apps/api/dist/auth/auth.guard.js

@@ -0,0 +1,49 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthGuard = void 0;
+const common_1 = require("@nestjs/common");
+const firebase_service_1 = require("./firebase.service");
+let AuthGuard = class AuthGuard {
+    firebaseService;
+    constructor(firebaseService) {
+        this.firebaseService = firebaseService;
+    }
+    async canActivate(context) {
+        const request = context.switchToHttp().getRequest();
+        if (!this.firebaseService.isFirebaseConfigured()) {
+            console.warn('⚠️ Firebase not configured - allowing request without auth');
+            return true;
+        }
+        const token = this.extractTokenFromHeader(request);
+        if (!token) {
+            throw new common_1.UnauthorizedException('No token provided');
+        }
+        try {
+            const decodedToken = await this.firebaseService.verifyIdToken(token);
+            request.user = decodedToken;
+            return true;
+        }
+        catch (error) {
+            throw new common_1.UnauthorizedException('Invalid token');
+        }
+    }
+    extractTokenFromHeader(request) {
+        const [type, token] = request.headers.authorization?.split(' ') ?? [];
+        return type === 'Bearer' ? token : undefined;
+    }
+};
+exports.AuthGuard = AuthGuard;
+exports.AuthGuard = AuthGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [firebase_service_1.FirebaseService])
+], AuthGuard);
+//# sourceMappingURL=auth.guard.js.map